๐บ๐ธ
TPI-Abuse
2026-07-02 15:25:48
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:25:42.251601 2026] [security2:error] [pid 6045:tid 6045] [client 172.71.164.93:9948] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thresholddigital.com"] [uri "/.git/config"] [unique_id "akaC9gmakOmiCjz9myHFUAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 14:30:27
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 10:30:21.135247 2026] [security2:error] [pid 24206:tid 24206] [client 172.71.164.93:11740] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "santaclausphonecall.com"] [uri "/.git/config"] [unique_id "akZ1_Rs69rZP2Z565wjV6AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 12:18:38
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 08:18:30.596841 2026] [security2:error] [pid 22443:tid 22443] [client 172.71.164.93:11577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kalvannaawards.com"] [uri "/.git/config"] [unique_id "akZXFmKUaZXXjSIuCGVtJAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 05:19:36
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 01:19:29.435652 2026] [security2:error] [pid 26151:tid 26151] [client 172.71.164.93:13050] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "archmediaptyltd.com"] [uri "/.git/config"] [unique_id "akX04cL0JQh6MLyMAlRlNQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
strxmpp
2026-06-20 15:58:16
(2 weeks ago)
172.71.164.93 - - [20/Jun/2026:17:58:15 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 4551 ...
show more
172.71.164.93 - - [20/Jun/2026:17:58:15 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 4551 "-" "http://jabberzueri.ch/wp-admin/install.php?step=1"
...
show less
Bad Web Bot
๐ท๐บ
DZBOT
2026-06-18 23:03:40
(2 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 09:17:27
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 05:17:22.948011 2026] [security2:error] [pid 10190:tid 10190] [client 172.71.164.93:9390] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.tempsetters.com"] [uri "/.env"] [unique_id "ajEUohEVKYL0jCEcKlWUAAAAAAA"], referer: https://www.google.com/search?q=mail.tempsetters.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
strxmpp
2026-06-09 18:51:52
(3 weeks ago)
172.71.164.93 - - [09/Jun/2026:20:51:51 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 4552 ...
show more
172.71.164.93 - - [09/Jun/2026:20:51:51 +0200] "GET /wp-admin/install.php?step=1 HTTP/1.1" 404 4552 "-" "http://jabberzueri.ch/wp-admin/install.php?step=1"
...
show less
Bad Web Bot
๐ซ๐ฎ
inlink.ltd
2026-06-06 20:17:19
(1 month ago)
dot file probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 04:47:52
(1 month ago)
(mod_security) mod_security (id:949110) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:949110) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 00:47:43.304155 2026] [security2:error] [pid 24046:tid 24046] [client 172.71.164.93:9409] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.tsmks.cescfoundation.org"] [uri "/.env.bak"] [unique_id "aiJU76hBNvUQElr4QbV_4gAAAAM"], referer: https://www.google.com/search?q=www.tsmks.cescfoundation.org
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 19:19:33
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 15:19:27.367835 2026] [security2:error] [pid 17260:tid 17292] [client 172.71.164.93:12431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gemini.pe"] [uri "/.git/config"] [unique_id "aiHPvwnG_gZzJtUmEjc22QAAAEA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 16:16:08
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 12:16:02.057142 2026] [security2:error] [pid 16478:tid 16478] [client 172.71.164.93:9424] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "santaclausphonecall.com"] [uri "/.git/config"] [unique_id "ah8Bwh57j1RGWkTmryeGLwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 12:05:36
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 08:05:33.388903 2026] [security2:error] [pid 24867:tid 24867] [client 172.71.164.93:12670] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "n3fjp.com"] [uri "/.git/config"] [unique_id "ah7HDRgIa_J4SEfKoe9HggAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 09:41:24
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.164.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 05:41:20.148532 2026] [security2:error] [pid 26772:tid 26772] [client 172.71.164.93:13767] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftwwx.com"] [uri "/.git/config"] [unique_id "ah6lQGXR95jr1RReLLjuFgAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฟ๐ฆ
Tokolosh Hunters
2026-05-31 20:55:41
(1 month ago)
AutoBlockWindow-Known bad useragent query-2026-05-31 20:55:40
Bad Web Bot